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DETAILED ACTION 

1 . This Office action is responsive to the Applicant's Amendment filed 02/07/2008. 
Claims 1-19 are presented for examination. 

Response to Arguments 

2. Applicant's arguments, see Amendment, filed 02/07/2008, with respect to the rejection(s) of 
claim(s) 1-4, 6-9, and 11-19 under 103 have been fully considered and are persuasive. Therefore, 
the rejection has been withdrawn. However, upon further consideration, a new ground(s) of rejection 
is made in view of Ganesan (U.S. Patent 5,838,792). 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all obviousness 
rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in section 
102 of this title, if the differences between the subject matter sought to be patented and the prior art are such that the 
subject matter as a whole would have been obvious at the time the invention was made to a person having ordinary skill 
in the art to which said subject matter pertains. Patentability shall not be negatived by the manner in which the 
invention was made. 

3. Claims 1-19 are rejected under 35 U.S.C. 103(a) as being unpatentable over Barkan (EP 
0738085 A2) herein referred to as Barkan in view of Ganesan (U.S. Patent 5,838,792) herein referred 
to as Ganesan. 

Regarding on Claims 1 and 6, Barkan discloses a method for establishing a secure 
communication channel in an IP telephony network between a first and a second user, wherein the 
first user and the second user are coupled to first and second telephony adapters, which in turn, are 
coupled to first and second gateway controllers, respectively, wherein the gateway controllers control 
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user access to the IP telephony network, and wherein the telephony adapters encrypt and decrypt 
user information exchanged over the IP telephony network (Fig. 1), the method comprising: 

receiving a request at the first gateway controller (key distribution center 1 1) to establish a 
secure communication channel (secure communication link) between the first user (facility 1) and the 
second user (facility 3) (Fig. 1, col. 3, lines 17-25 and col. 4, lines 1-2); generating keys at the 
gateway controller (col. 8, lines 29-34, i.e., the user can go to a cellular phone company center to 
compute there and loads new keys, for example by connecting to terminals in that center). 

Barkan does not disclose generating a secret key at the first gateway controller; distributing the 
secret key to the first and second telephony adapters over previously established secure connections; 
and establishing the secure communication channel between the first user and the second user by 
encrypting and decrypting information using the secret key. 

However, Ganesan explicitly discloses generating a secret key (session key) at the first 
gateway controller (Figure 1, element 50, Figure 2, element 212 col. 3, line 65 - col. 4, line 1); 
distributing the secret key to the first and second telephony adapters over previously established 
secure connections (Figure 1, elements 30 and 32, col. 9, lines 50-52); and establishing the secure 
communication channel between the first user and the second user by encrypting and decrypting 
information using the secret key (Figure 2, elements 218 and 220, col. 9, lines 50-57). 

Therefore, it would have been obvious to one of ordinary skill in the art at the time the 
invention was made to have combined Ganesan's invention with Barkan to include generating a 
secret key at the first gateway controller; distributing the secret key to the first and second telephony 
adapters over previously established secure connections; and establishing the secure communication 
channel between the first user and the second user by encrypting and decrypting information using 



Application/Control Number: 09/890,180 Page 4 

Art Unit: 2135 

the secret key. One of ordinary skill in the art would have been motivated to do so because it would 
provide secure communications during a communication session between users as taught by 
Ganesan (Abstract). 

Regarding on Claim 2, Barkan and Ganesan disclose the limitations as discussed in Claim 1 
above. Barkan further discloses wherein the step of generating comprises a step of generating a 
random number at the first gateway controller to be used as the secret key (col. 14, line 59 and col. 
15, lines 1-5). 

Regarding on Claim 3, Barkan and Ganesan disclose the limitations as discussed in Claim 1 
above. Barkan further discloses wherein the step of generating comprises a step of deriving the 
secret key at the first gateway controller (col. 15, lines 5-10), wherein the secret key is derived from a 
signaling key shared between the first telephony adapter and the first gateway controller (col. 15, 
lines 15-20). 

Regarding on Claim 4, Barkan and Ganesan disclose the limitations as discussed in Claim 1 
above. Barkan further discloses transmitting the secret key from the first gateway controller to the 
second gateway controller (col. 7, lines 45-55); transmitting the secret key from the second gateway 
controller to the second telephony adapter (col. 7, lines 45-50), transmitting the secret key from the 
first gateway controller to the first telephony adapter (col. 6, lines 35-40). 

Regarding on Claim 5, Barkan and Ganesan disclose the limitations as discussed in Claim 1 
above. Ganesan further discloses receiving a request at the first gateway controller to provide the 
secret key to a law enforcement server; and providing the secret key to the law enforcement server 
(col. 4, lines 16-62). 
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Regarding on Claim 7, Barkan discloses a gateway controller for establishing a secure 
communication channel in an IP telephony network, the gateway controller coupled between a 
telephony adapter and a telephony network backbone (Fig. 1), the gateway controller (key distribution 
center) comprising: 

a key storage module (key management controller) coupled to the key creation module and 
having logic to store the secret key (col. 8, lines 15-20); and 

a message processor coupled to the key creation module and the key storage module (col. 8, 
lines 15-20), and having logic to process messages exchanged between the telephony adapter and 
the telephony network backbone (Fig. 1, element 111) (col. 7, lines 51-54 and col. 14, lines 15-30), 
wherein the message processor further comprises: 

logic to receive a request to establish a secure communication channel between a first user 
and a second users the first user couple to the telephony adapter, the second user coupled to a 
remote telephony adapter (Fig. 1, col. 3, lines 17-25 and col. 4, lines 1-2); create keys at the gateway 
controller (col. 8, lines 29-34, i.e., the user can go to a cellular phone company center to compute 
there and loads new keys, for example by connecting to terminals in that center). 

Barkan explicitly does not disclose a key creation module having logic to create a secret key; 
logic to distributed the secret key to the telephony adapters over previously established secure 
connections, whereby the secure communication channel between the first user and the second user 
may be established by encrypting and decrypting information using the secret key. 

However, Ganesan explicitly discloses a key creation module having logic to create a secret 
key (session key) (Figure 1 , element 50, Figure 2, element 212 col. 3, line 65 - col. 4, line 1 ); logic to 
distributed the secret key to the telephony adapters over previously established secure connections 
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over previously established secure connections (Figure 1, elements 30 and 32, col. 9, lines 50-52); 
and whereby the secure communication channel between the first user and the second user may be 
established by encrypting and decrypting information using the secret key (Figure 2, elements 218 
and 220, col. 9, lines 50-57). 

Therefore, it would have been obvious to one of ordinary skill in the art at the time the invention was 
made to have combined Ganesan's invention with Barkan to include a key creation module having 
logic to create a secret key; logic to distributed the secret key to the telephony adapters over 
previously established secure connections; whereby the secure communication channel between the 
first user and the second user may be established by encrypting and decrypting information using the 
secret key. One of ordinary skill in the art would have been motivated to do so because it would 
provide secure communications during a communication session between users as taught by 
Ganesan (Abstract). 

Regarding on Claim 8, Barkan and Ganesan disclose the limitations as discussed in Claim 7 
above. Barkan further discloses wherein the key creation module has logic to generate a random 
number as the secret key (col. 14, line 59 and col. 15, lines 1-5). 

Regarding on Claim 9, Barkan and Ganesan disclose the limitations as discussed in Claim 7 
above. Barkan further discloses wherein the key creation module has logic to derive the secret key 
from a signaling key shared with the telephony adapter (col. 8, lines 15-40). 

Regarding on Claim 10, Barkan and Ganesan disclose the limitations as discussed in Claim 7 
above. Barkan and Ganesan further disclose wherein the key storage module has logic to encrypt the 
secret key before storage (Barkan, col. 10, lines 20-25) using a public/private key pair belonging to 
law enforcement (Ganesan, col. 4, lines 16-62). 
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Regarding on Claim 11, Barkan discloses a system for providing encrypted communications in 
an IP telephony network, said system comprising: 

a first cable telephony adapter (facility 1 key management device) (col. 5, lines 53-55); 

a first gateway controller (key distribution center 1 1 ) coupled with said first cable telephony 
adapter (col. 6, lines 25-30); 

a second cable telephony adapter (facility 3 key management device) (col. 5, lines 52-55); 

a second gateway controller (key distribution center 12) coupled with said second cable 
telephony adapter (col. 7, lines 45-50); 

a network coupled with both said first gateway controller and said second gateway controller 
so as to facilitate communications between said first cable telephony adapter and said second cable 
telephony adapter wherein said communications are routed via said first gateway controller and said 
second gateway controller (Fig. 1, col. 5, line 52 through col. 12, line 18). 

Barkan explicitly does not disclose wherein said first gateway controller comprises: a first key 
creation module configured to generate a secret key for distribution to both said first cable telephony 
adapter and said second cable telephony adapter for use in encrypted communications between said 
first cable telephony adapter and said second cable telephony adapter. 

However, Ganesan explicitly discloses wherein said first gateway controller comprises: a first 
key creation module configured to generate a secret key (session key) for distribution to both said first 
cable telephony adapter and said second cable telephony adapter for use in encrypted 
communications between said first cable telephony adapter and said second cable telephony adapter 
over previously established secure connections (Figure 1, elements 30, 32, and 50, col. 9, lines 26- 
57). 
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Therefore, it would have been obvious to one of ordinary skill in the art at the time the 
invention was made to have combined Ganesan's invention with Barkan to include wherein said first 
gateway controller comprises: a first key creation module configured to generate a secret key for 
distribution to both said first cable telephony adapter and said second cable telephony adapter for use 
in encrypted communications between said first cable telephony adapter and said second cable 
telephony adapter. One of ordinary skill in the art would have been motivated to do so because it 
would provide secure communications during a communication session between users as taught by 
Ganesan (Abstract). 

Regarding on Claim 12, Barkan and Ganesan disclose the limitations as discussed in Claim 1 1 
above wherein said second gateway controller comprises: 

a second key creation module configured to generate a secret key for distribution to both said 
first cable telephony adapter and said second cable telephony adapter for use in encrypted 
communications between said first cable telephony adapter and said second cable telephony adapter 
(col. 8, lines 30-35 and Abstract, lines 1-5). 

Regarding on Claim 13, Barkan and Ganesan disclose the limitations as discussed in Claim 1 1 
above wherein said first gateway controller further comprises: 

a message processor configured to receive an encrypted message from said first cable 
telephony adapter intended for decryption by said second cable telephony adapter and further 
configured to forward said encrypted message to said second gateway controller without decrypting 
said encrypted message (col. 7, lines 51-54 and col. 14, lines 15-30). 
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Regarding on Claim 14, Barkan and Ganesan disclose the limitations as discussed in Claim 7 
above. Barkan further discloses wherein said key creation module is configured to intermittently 
generate a second secret key and to distribute said second secret key to said first cable telephony 
adapter and said second cable telephony adapter so as to replace said previously generated secret 
key (col. 7, lines 45-59 and col. 8, lines 1-40). 

Regarding on Claim 15, Barkan discloses a method of establishing secure communications 
between a first cable telephony adapter and a second cable telephony adapter in a system in which 
secure communications do not previously exist between said first cable telephony adapter and said 
second cable telephony adapter, wherein said first cable telephony adapter is coupled with a first 
gateway controller, said second cable telephony adapter is coupled with a second gateway controller, 
and a network is coupled with said first gateway controller and said second gateway controller (Fig. 
1), said method comprising: 

receiving at said first gateway controller (key distribution center 1 1 ) a request from said first 
cable telephony adapter to establish communications between said first cable telephony adapter 
(facility 1 key management device) and said second cable telephony adapter (facility 3 key 
management device) (Fig. 1, col. 3, lines 17-25 and col. 4, lines 1-2); 

Barkan does not disclose "generating a secret key at said first gateway controller; distributing 
said secret key from said first gateway controller to said first cable telephony adapter." 

However, Ganesan explicitly discloses generating a secret key (session key) at the first 
gateway controller (Figure 1, element 50, Figure 2, element 212 col. 3, line 65 - col. 4, line 1) and 
distributing said secret key from said first gateway controller to said first cable telephony adapter over 
previously established secure connections (col. 9, lines 50-52). 
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Therefore, it would have been obvious to one of ordinary skill in the art at the time the invention was 
made to have combined Ganesan's invention with Barkan to include generating a secret key at said 
first gateway controller and distributing said secret key from said first gateway controller to said first 
cable telephony adapter. One of ordinary skill in the art would have been motivated to do so because 
it would provide secure communications during a communication session between users as taught by 
Ganesan (Abstract). 

Barkan and Ganesan disclose the limitations of claims 15 above. Barkan and Ganesan further 
discloses distributing said secret key to said second gateway controller via a secure communication 
(Barkan, Figure 1, elements 11 and 12, and Ganesan, col. 9, lines 50-52); distributing said secret key 
from said second gateway controller to said second cable telephony adapter (Barkan, Figure 1 , 
elements 11 and 12, and Ganesan, col. 9, lines 50-52). 

Regarding on Claim 16, Barkan and Ganesan disclose the limitations as discussed in Claim 15 
above. Barkan further discloses encrypting a message at said first cable telephony adapter with said 
secret key (col. 6, lines 30-35); sending said encrypted message to said first gateway controller (col. 
9, lines 45-50); receiving said encrypted message at said first gateway controller (col. 6, lines 25-40); 
forwarding said encrypted message from said first gateway controller to said second gateway 
controller without decrypting said encrypted message (col. 10, lines 45-55). 

Regarding on Claim 17, Barkan and Ganesan disclose the limitations as discussed in Claim 15 
above. Barkan further discloses receiving said encrypted message at said second gateway controller 
(col. 10, lines 45-50); forwarding said encrypted message from said second gateway controller to said 
second cable telephony adapter without decrypting said message (col. 10, lines 35-55); decrypting 
said encrypted message at said second cable telephony adapter (col. 15, lines 17-20). 
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Regarding on Claim 18, Barkan and Ganesan disclose the limitations as discussed in Claim 15 
above. Barkan further discloses encrypting a message at said first cable telephony adapter with said 
secret key (col. 6, lines 30-35); sending said encrypted message to said first gateway controller (col. 
9, lines 45-50); receiving said encrypted message at said first gateway controller (col. 6, lines 25-40); 
routing said encrypted message from said first gateway controller to said second cable telephony 
adapter (col. 12, lines 5-15). 

Regarding on Claim 19, Barkan and Ganesan disclose the limitations as discussed in Claim 15 
above. Barkan further discloses receiving said encrypted message at said second cable telephony 
adapter (col. 15, lines 15-17); decrypting said encrypted message at said second cable telephony 
adapter with said secret key (col. 15, lines 17-20). 

Contact Information 

4. Any inquiry concerning this communication or earlier communications from the examiner 
should be directed to Baotran N. To whose telephone number is (571)272-8156. The examiner can 
normally be reached on Monday-Friday from 8:00 to 4:30. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's supervisor, 
Kim Y. Vu can be reached on 571-272-3859. The fax phone number for the organization where this 
application or proceeding is assigned is 703-872-9306. 
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Information Retrieval (PAIR) system. Status information for published applications may be obtained 
from either Private PAIR or Public PAIR. Status information for unpublished applications is available 
through Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR system, contact the 
Electronic Business Center (EBC) at 866-217-9197 (toll-free). 



IB. N. 1.1 

Examiner, Art Unit 2135 
04/30/2008 
/KIMYEN VU/ 

Supervisory Patent Examiner, Art Unit 2135 



